As the new Chief Information Security Officer in the organization, you have been tasked by your Board of Directors to develop a Cybersecurity Implementation Guideline using a combination of the NIST Framework and the CIS $20$ Critical Controls. They are both very flexible and may be customized to your organization and its needs. After reviewing the two processes, you should develop the Cybersecurity Implementation Guideline that you will send to the Board members and present to the Board for approval before taking further action.

Background

In the broad sense, you are identifying how you will determine where your organization currently is in regard to cybersecurity, how you will determine where your organization wants to be about cybersecurity in the long term, identify and define what you need to do to achieve these prioritized issues; identify who will be responsible and accountable to develop the strategies, action plans, budgets, and steps needed allocate the time, financial, and human resources to achieve the objectives; and ensure you revisit and review what you have developed before submitting to the Board.

In addition, you need to consider your Organization$$s Business Strategic Model and the direction for your current and future IT Infrastructure deployments, considering your on$-$premise platforms, cloud$-$based environments, and$/$or hybrids.

Assignment Instructions

Step $1.$ Review the template provided in the assignment overview. You are not required to use every section of the template. You can choose which sections you use, delete those you do not need, and even add sections necessary for your cybersecurity guidelines.

The guidelines should be three pages, double$-$spaced, with Times New Roman font. Your references should be cited with NXU Style, as found in the writing lab. You can use references provided in the course.

Step $2.$ Conduct research to help with your implementation guideline. You need to include at least three references in this guideline. When you find useful resources, save them and record the information for possible use on the reference list. The following resources will help you get started.

Step $3.$ Write your Guidelines. Using both the NIST Framework and the CIS $20$ Critical Controls, prepare your cybersecurity implementation guideline for the organization.

Step $4.$ Create Reference List and Images. You must have at least three references. You are encouraged to use images and figures to support your recommended guidelines. The images can be embedded in the document but do not count towards your page count.

Assignment Tips

Make sure to use a combination of the NIST Framework and the CIS $20$ Critical Controls.